Create Next App

Exam contains 466 questions

Page 1 of 78

Question 1 🔥

A penetration tester gains access to a system and establishes persistence, and then run the following commands:Which of the following actions is the tester MOST likely performing?

Which database solution meets these requirements?

A. Redirecting Bash history to /dev/null

Highly voted

B. Making a copy of the user's Bash history to further enumeration

Highly voted

C. Covering tracks by clearing the Bash history

Highly voted

D. Making decoy files on the system to confuse incident responders

Highly voted

Discussion of the question

Question 2 🔥

A compliance-based penetration test is primarily concerned with:

Which database solution meets these requirements?

A. obtaining PII from the protected network.

Highly voted

B. bypassing protection on edge devices.

Highly voted

C. determining the efficacy of a specific set of security standards.

Highly voted

D. obtaining specific information from the protected network.

Highly voted

Discussion of the question

Question 3 🔥

A penetration tester is explaining the MITRE ATT&CK framework to a company's chief legal counsel.Which of the following would the tester MOST likely describe as a benefit of the framework?

Which database solution meets these requirements?

A. Understanding the tactics of a security intrusion can help disrupt them.

Highly voted

B. Scripts that are part of the framework can be imported directly into SIEM tools.

Highly voted

C. The methodology can be used to estimate the cost of an incident better.

Highly voted

D. The framework is static and ensures stability of a security program over time.

Highly voted

Discussion of the question

Question 4 🔥

Which of the following BEST describe the OWASP Top 10? (Choose two.)

Which database solution meets these requirements?

A. The most critical risks of web applications

Highly voted

B. A list of all the risks of web applications

Highly voted

C. The risks defined in order of importance

Highly voted

D. A web-application security standard

Highly voted

E. A risk-governance and compliance framework

Highly voted

F. A checklist of Apache vulnerabilities

Highly voted

Discussion of the question

Question 5 🔥

A penetration tester discovered a vulnerability that provides the ability to upload to a path via discovery traversal. Some of the files that were discovered through this vulnerability are:Which of the following is the BEST method to help an attacker gain internal access to the affected machine?

Which database solution meets these requirements?

A. Edit the discovered file with one line of code for remote callback.

Highly voted

B. Download .pl files and look for usernames and passwords.

Highly voted

C. Edit the smb.conf file and upload it to the server.

Highly voted

D. Download the smb.conf file and look at configurations.

Highly voted

Discussion of the question

Question 6 🔥

Which of the following commands will allow a penetration tester to permit a shell script to be executed by the file owner?

Which database solution meets these requirements?

A. chmod u+x script.sh

Highly voted

B. chmod u+e script.sh

Highly voted

C. chmod o+e script.sh

Highly voted

D. chmod o+x script.sh

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

comptia PT0_002

Exam contains 466 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us